The prefix 'WKX_' has been added to all tables to account for future possible support of ORACLE and other SQL databases with draconian licensing. The first time WIKINDX is run after installation, update/createSQL.xml is parsed by SYSTEMCHECK to create the tables and perform any database structural updating.
For exact details of the database structure, please view the database matrix.
Developers should note that all data written to the database should be escaped to escape control characters such as double quotes, single quotes, backslashes and so on. All data that derives from browser form input is already escaped so nothing more need be done before writing that data to the database. Data that comes from the database is read from the database as binary data (i.e. not escaped) but is automatically escaped before being returned for use (i.e. it will already be escaped if you wish to write it to a session as long as the data is gathered using fetchRow, fetchOne or loopRecordSet methods). Any data that derives from external files (such as Endnote or BibTeX imports, must be escaped before inserting to the database - this is easily done by setting the database class object's escapeString method to TRUE before insert or update operations:
$this->db->escapeString = TRUE;
By default, this variable is FALSE and it is probably a good idea to set it back to FALSE once you have finished with it.